It was called to my attention this morning that there existed a way to access email addresses of forum users regardless of their email address privacy setting. I investigated and identified the method, which involved manually creating falsified URLs. I have corrected the issue so this is no longer possible.

I apologize for any trouble this may have caused for any of our users. As an additional step, we will perform a full audit to ensure that no additional ways exist to bypass email address or other privacy.

I received this alert when I was 'surfing' around Invelos the other day.,, This is what I found out about 'TCP Fin Scan':The firewall alert that you are seeing indicates that someone hasattempted to scan your computer using the TCP FIN Scan. What this doesis attempt to determine which ports are open on your computer so thatthey may be used to intrude. The fact that you have been alerted to thescan by the Shaw Secure firewall is your assurance that the scan was notsuccessful, as it was blocked by Shaw Secure. It is impossible toprevent someone from attempting to scan your computer, since theInternet is, by its very nature, a shared medium, and so the defence isto block the scan. So there is no cause for concern because Shaw Securehas protected your computer from being scanned.

Is this what this Post is about Ken ??

In the 60's, People took Acid to make the world Weird. Now the World is weird and People take Prozac to make it Normal.

No, what Ken meant is that it was possible to get my mail address (mine should be private) by switching the username in a legit url like http://www.invelos.com/ConfirmNotAutomated.aspx?task=email&alias=widescreenforever to my username: http://www.invelos.com/ConfirmNotAutomated.aspx?task=email&alias=SH84. Prior to this patch everyone could "solve" the test and get my mail address, now that's not possible.

And you got a simple portscan, script kiddies do them all day long and try to get an infected pc to play with. It's nothing to worry about if your computer is clean.

Quote:I received this alert when I was 'surfing' around Invelos the other day.,, This is what I found out about 'TCP Fin Scan':The firewall alert that you are seeing indicates that someone hasattempted to scan your computer using the TCP FIN Scan.

A damn good firewall with settings to allow you out and un-warranted intruders out will stop any intrusion.

@Terry: just because you where on the Invelos site at the time the attack occured doen't mean it's Invelos site related. I have seen them come up on a freinds PC when he was only downloading his email's.

No, the screenshot shows that the scan originated from the IP-address 83.115.198.142, which has nothing to do with Invelos - it belongs to a private costumer in France (with the ISP Wanadoo)...

That you got it while visiting the Invelos website has nothing to do with anything - you would have gotten it no matter which site you were on when the scan was initiated - you would even have gotten it if your browser was closed at the time...

The future is here. It's just not widely distributed yet. (William Gibson)

Not to mention enhancement spam for certain body parts. but your oversight wasn't as noticeable cause of spam increase compare to:Moat on my spam increased when I amplified for Social Security, an other example of how our government is looking out for you.My spam blocker catches about 150 to 200 a day, not mention 25 to 40 possible spam.

We don't need stinkin' IMDB's errors, we make our own.Ineptocracy, You got to love it."Nearly all men can stand adversity, but if you want to test a man's character, give him power." - Abraham Lincoln